Cencora Discloses Data Breach in SEC Filing

Console and Associates, P.C.

On February 27, 2024, Cencora, Inc. filed a notice of data breach with the Securities and Exchange Commission after discovering that an unauthorized actor accessed the company’s computer network. In this notice, Cencora explains that the incident resulted in an unauthorized party being able to obtain personal information in Cencora’s possession. While Cencora has not elaborated on the type of data that was compromised, Upon completing its investigation, once the company’s investigation is complete, it will be required to send data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you receive a data breach notification from Cencora, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Cencora data breach. For more information, please see our recent piece on the topic here.

What Caused the Cencora Data Breach?

The Cencora data breach was only recently announced, and more information is expected in the near future. However, Cencora’s filing with the Securities and Exchange Commission provides some important information on what led up to the breach. According to this source, on February 21, 2024, Cencora learned that certain information from its computer system had been subject to unauthorized access.

In response, Cencora took steps to secure its systems in hopes of mitigating the cyberattack. Additionally, Cencora reported the incident to law enforcement and began an investigation with the help of third-party cybersecurity experts.

Cencora’s investigation is ongoing, and it may still be several weeks or even months until we know the full extent of what information was compromised. However, it is likely that Cencora is in the process of reviewing the compromised files to determine what information was leaked and which consumers were impacted.

On February 27, 2024, Cencora notified the Securities and Exchange Commission of the cyberattack and subsequent data breach. Once the company’s investigation is complete, Cencora will be required to notify anyone whose information was affected by sending them a data breach letter. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About Cencora, Inc.

Cencora, Inc., which was formerly known as AmerisourceBergen, is a drug wholesale company and a contract research organization based out of Conshohocken, Pennsylvania. Cencora provides drug distribution and consulting services related to medical business operations and patient services. The company also distributes brand name and generic medications, healthcare products, and home health care supplies to healthcare providers. Cencora also provides pharmaceuticals and pharmacy services to patients in long-term care facilities, patients receiving workers' compensation and patients requiring specialty medications. Cencora employs more than 46,000 people and generates approximately $238 billion in annual revenue.

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Console and Associates, P.C. | Attorney Advertising

Written by:

Console and Associates, P.C.

Console and Associates, P.C. on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide